CVE-2008-3314
ZDaemon 1.08.07 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted type 6 command, which triggers a NULL pointer dereference.
| Software | From | Fixed in |
|---|---|---|
| zdaemon / zdaemon | 1.08.04 | 1.08.04.x |
| zdaemon / zdaemon | 1.08.06 | 1.08.06.x |
| zdaemon / zdaemon | 1.08.01 | 1.08.01.x |
| zdaemon / zdaemon | 1.08.03 | 1.08.03.x |
| zdaemon / zdaemon | 1.08 | 1.08.x |
| zdaemon / zdaemon | - | 1.08.07.x |
| zdaemon / zdaemon | 1.08.02 | 1.08.02.x |
| zdaemon / zdaemon | 1.08.05 | 1.08.05.x |
- http://aluigi.altervista.org/adv/zdaemonull-adv.txt
- http://aluigi.org/poc/zdaemonull.zip
- http://secunia.com/advisories/31185
- http://securityreason.com/securityalert/4043
- http://www.securityfocus.com/archive/1/494634/100/0/threaded
- http://www.securityfocus.com/bid/30340
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43946
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime